Do Criminals have your ATM Card number and PIN? Skimming is big business in Dallas and Austin.
I recently read “Kingpin: How One Hacker Took Over the Billion-Dollar Cybercrime Underground”(Google Books Preview, Library, Amazon), a well-written and exciting read about the dark and festering hacker subculture boiling beneath the surface of the world wide internet. Author Kevin Poulsen is an ex-hacker and is very well tuned in to what is happening in the criminal wing of the public network. I think we all realize that the internet is a hotbed of criminal activity, but Kingpin shows step by step how ‘carding’ or the use of the internet for the trafficing of stolen credit card information, happens on an unimaginable scale. For anyone who has an interest in how the criminals pull off the credit card fraud we hear about in the media, I highly recommend picking up this book. I also recommend the blog ThreatLevel at wired.com, of which he is co-founder and a frequent contributor.
There are a multitude of ways the internet makes us personally vulnerable to criminal activity. I have covered these issues in many posts previously, summarized at the end of this post.
The internet, however, is not the only way the criminals can get our account details – and sometimes they use techniques that are plain old school, doing it the old fashioned way – with new technology twists. Skimming, or the unauthorized capture of ATM or credit card information in an otherwise legitimate transaction, can be perpetrated by dishonest employees or criminals using equipment installed over self-use terminals, like ATMs or gas pumps. Most of us don’t realize how rampant this type of crime is and how close to home it’s happening. A government agency source has warned me that this crime is very big business in Dallas and Austin and arrests have occurred in other major metros around the country.
ATM vestibule entry card swipers, Bank ATMs, ATMs or gas pumps are common targets for this activity. Protect yourself by understanding how the criminals skim card data, being aware and following these tips:
- Trust your instincts. If anything looks unusual or suspicious, find another pump or ATM.
- Check the card slot and make sure that it does not extend out more than normal. Verify the card slot is securely affixed to the machine and it is not loose or crooked or have evidence of scratches, tape or adhesive residue.
- If there appears to be anything stuck onto the card slot or keypad, don’t use it. Don’t try to remove suspicious devices.
- Be cautious if strangers offer to help you at an ATM or gas pump, even if your card is stuck or you’re having difficulties. Don’t allow anyone to distract you.
- Inspect pamphlet holders on or near the pump or ATM machine to be sure there are no pin hole cameras that can capture your PIN. Always protect your PIN by standing close to the ATM and shielding the keypad with your other hand.
Criminals want to steal your financial information via the internet as well as at the gas pump and the ATM. Be aware and be a bit paranoid, two good ways to avoid becoming a victim to a skimming attack.
Previous posts on financial crime security:
Do you know what Phone Phishing (or Vishing) is? Beware of the Debit Card Vishing Scam!
How to avoid having your bank account drained
Banks do not have fraud detection systems…
The Economics of Cybercrime
If the IRS emails you saying your payment failed: you’ve been hacked
New variants mean more work for security researchers
Zeus and the new wave of sophisticated threats